Apparently our sysadmins managed to track the DoSer to the company where he was originating the attacks from. The company immediately suspended him, and now we're strongly considering legal action.
Think we should do it, or will it be more likely to bring on harder-core DoSers who know how to hide themselves better?
As for legal action, it depends on how much you think you've been hurt. My initial inclination is to say yes, though it's too bad you can't go after the individual (or can you?). The company will probably settle anyway.
Re:Wow
Matts on 2002-03-20T19:16:25
We would go after the individual, not the company. Anything else would be stupid I think.
I say kill 'em all!
Re:DoS
Matts on 2002-03-20T22:11:46
We're an ISP. They were mailbombing a customer of ours (bouncing spam back to them through open relays). Apparently either a disgruntled ex-employee, or someone who got burned by them in one way or another. I don't have all the details sadly.
Mostly I say "send out a message". I mean, what he was doing was illegal. But then again, I can't see the courts coming down too hard on him - the damages were a few hours work for a few people every time he launched an attack (which he did quite a few times). In all probably a few thousand pounds. I see far more heinous crimes being committed in the world.
Re:It pains me ...
ziggy on 2002-03-24T00:34:38
I have to agree. There are lots of script kiddies out there who think it's fun to waste time, money and resources by performing DoS attacks. As long as they feel they can act childishly without consequences, this behavior will continue.